Cybersecurity

5925 readers

327 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

326

Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers (thehackernews.com)

submitted 2 months ago by kid to c/cybersecurity

4 comments fedilink

327

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware (thehackernews.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

328

Cisco Identity Services Engine Flaw Bypass Authorization Mechanisms (cybersecuritynews.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

329

North Korean hackers use new macOS malware against crypto firms (www.bleepingcomputer.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

330

Hackers increasingly use Winos4.0 post-exploitation kit in attacks (www.bleepingcomputer.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

331

German Law Could Protect Researchers Reporting Vulns (www.darkreading.com)

submitted 2 months ago by [email protected] to c/cybersecurity

0 comments fedilink

The draft amendment also includes prison time for those who access systems to maliciously spy or intercept data.

332

An encrypted and anti-forensic public web chat server (lemmy.world)

submitted 2 months ago by [email protected] to c/cybersecurity

0 comments fedilink

https://github.com/umutcamliyurt/Amnesichat

333

Researcher Discloses 36 Vulnerabilities Found in IBM Security Verify Access (www.securityweek.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

334

Android Botnet ToxicPanda Bashes Banks Across Europe, LatAm (www.darkreading.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

335

A Massive Hacking Toolkit From "You Dun" Threat Group Developed To Lauch Massive Cyber Attack (gbhackers.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

336

Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages (thehackernews.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

337

Android flaw may be under limited, targeted exploitation (securityaffairs.com)

submitted 2 months ago by kid to c/cybersecurity

1 comments fedilink

338

Crooks bank on Microsoft's search engine to phish customers (www.malwarebytes.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

339

Stealthy Process Injection: New Kernel Callback Table Technique Exposed (securityonline.info)

submitted 2 months ago by kid to c/cybersecurity

1 comments fedilink

340

Windows infected with backdoored Linux VMs in new phishing attacks (www.bleepingcomputer.com)

submitted 2 months ago by kid to c/cybersecurity

1 comments fedilink

341

Google Researchers Claim First Vulnerability Found Using AI (www.infosecurity-magazine.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

342

Cybercriminals Exploit DocuSign APIs to Send Fake Invoices (www.infosecurity-magazine.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

343

Hundreds of code libraries posted to NPM try to install malware on dev machines (arstechnica.com)

submitted 2 months ago by [email protected] to c/cybersecurity

0 comments fedilink

344

Microsoft SharePoint RCE bug exploited to breach corporate network (www.bleepingcomputer.com)

submitted 2 months ago by kid to c/cybersecurity

0 comments fedilink

345

Interlock Ransomware Puts FreeBSD Servers in Critical Danger Worldwide (www.secureblink.com)

submitted 2 months ago by kid to c/cybersecurity

2 comments fedilink

346

156

Popular Chrome Extension to Hide YouTube Shorts Turned Malicious (cyberinsider.com)

submitted 2 months ago by [email protected] to c/cybersecurity

19 comments fedilink

347

OSINT with ChatGPT Search Engine (fosstodon.org)

submitted 2 months ago by [email protected] to c/cybersecurity

0 comments fedilink

348

RCE Vulnerability in QBittorrent – Sharp Security (sharpsec.run)

submitted 2 months ago by [email protected] to c/cybersecurity

0 comments fedilink

349

Thousands of hacked TP-Link routers used in years-long account takeover attacks (arstechnica.com)

submitted 2 months ago by [email protected] to c/cybersecurity

2 comments fedilink

350

DDoS site Dstat.cc seized and two suspects arrested in Germany (www.bleepingcomputer.com)

submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/cybersecurity

0 comments fedilink

The Dstat.cc DDoS review platform has been seized by law enforcement, and two suspects have been arrested after the service helped fuel distributed denial-of-service attacks for years.